Automatic Analysis and Reasoning Based on Vulnerability Knowledge Graph

Qin, Shengzhi; Chow, Kam-Pui

doi:10.1007/978-981-15-1922-2_1

Cited by 23 publications

(13 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…An original intention of KG-based methods is to excavate implicit relationships from more instances. By calculating the conditional probability of a pair of weaknesses belonging to the same product entity in a vulnerability KG, Qin et al mined hidden weakness chains of compromised products in a statistical way [19].…”

Section: Reasoning-based Security Analysismentioning

confidence: 99%

“…Algorithm 1: Continued ( 16) remove the last elements from cur_p_rela and cur_p_ent (17) end if (18) for each entity adj_ent and relation adj_rela adjacent to cur_ent do (19) if adj_ent is not in cur_p_ent then (20) DFS_SIM (adj_rela, adj_ent, cur_p_rela, cur_p_ent, p_vec, cur_sim, cur_len, e t , max_p_len, q_r_vec, cri_p_set) (21) end if (22) end for (23) remove the last elements from cur_p_rela and cur_p_ent (24) end function…”

Section: Algorithm 1: Critical Relation Path Depth-first Search With ...mentioning

confidence: 99%

See 1 more Smart Citation

Critical Relation Path Aggregation-Based Industrial Control Component Exploitable Vulnerability Reasoning

Wang¹,

Huo²,

Zhang³

et al. 2023

Computers, Materials &Amp; Continua

View full text Add to dashboard Cite

Section: Reasoning-based Security Analysismentioning

confidence: 99%

Section: Algorithm 1: Critical Relation Path Depth-first Search With ...mentioning

confidence: 99%

Critical Relation Path Aggregation-Based Industrial Control Component Exploitable Vulnerability Reasoning

Wang¹,

Huo²,

Zhang³

et al. 2023

Computers, Materials &Amp; Continua

View full text Add to dashboard Cite

“…The inference engine perceives and separates the abnormalities based on the instances repository and the user-defined inference rules to achieve the goal of automatically responding to threats. We analyzed the characteristics of multiple knowledge bases of IoT security, and we proposed an IoT Security Threat Ontology (IoTSTO), which was inspired by UCO [12], IoTSec [19], and VulKG [43]. Furthermore, some concepts were extracted from these works, but with many details adjusted to make the ontology more suitable for knowledge bases.…”

Section: Ontology-based Multi-source Knowledge Reasoning Framework For Iot Securitymentioning

confidence: 99%

“…Campaign can be expressed by the tactics, techniques, resources (tools, malware), groups that issued the malicious activities, and the mitigations that defend the system against this campaign. We analyzed the characteristics of multiple knowledge bases of IoT security, and we proposed an IoT Security Threat Ontology (IoTSTO), which was inspired by UCO [12], IoTSec [19], and VulKG [43]. Furthermore, some concepts were extracted from these works, but with many details adjusted to make the ontology more suitable for knowledge bases.…”

Section: Classes and Attributes Analysis Of Iotstomentioning

confidence: 99%

“…The current cyber security ontology models focus on different scopes of information. Some models focus on the integration of IoT assets, vulnerabilities, and weaknesses [19,43,49], and some models focus on modeling attack in the IoT environment [12,18,20,39,50,51]. Our proposed ontology model focuses on the information on IoT assets, vulnerabilities, weaknesses, attack patterns, techniques, and tactics, which gives a holistic view of the cyber security situation and is more comprehensive than the other models.…”

Section: Rule-7：mentioning

confidence: 99%

See 1 more Smart Citation

Multi-Source Knowledge Reasoning for Data-Driven IoT Security

Zhang

Bai

et al. 2021

Sensors

View full text Add to dashboard Cite

Nowadays, there are different kinds of public knowledge bases for cyber security vulnerability and threat intelligence which can be used for IoT security threat analysis. However, the heterogeneity of these knowledge bases and the complexity of the IoT environments make network security situation awareness and threat assessment difficult. In this paper, we integrate vulnerabilities, weaknesses, affected platforms, tactics, attack techniques, and attack patterns into a coherent set of links. In addition, we propose an IoT security ontology model, namely, the IoT Security Threat Ontology (IoTSTO), to describe the elements of IoT security threats and design inference rules for threat analysis. This IoTSTO expands the current knowledge domain of cyber security ontology modeling. In the IoTSTO model, the proposed multi-source knowledge reasoning method can perform the following tasks: assess the threats of the IoT environment, automatically infer mitigations, and separate IoT nodes that are subject to specific threats. The method above provides support to security managers in their deployment of security solutions. This paper completes the association of current public knowledge bases for IoT security and solves the semantic heterogeneity of multi-source knowledge. In this paper, we reveal the scope of public knowledge bases and their interrelationships through the multi-source knowledge reasoning method for IoT security. In conclusion, the paper provides a unified, extensible, and reusable method for IoT security analysis and decision making.

show abstract

Threat Analysis of IoT Security Knowledge Graph Based on Confidence

Zhang

Hong

et al. 2021

Emerging Technologies for Education

View full text Add to dashboard Cite

Automatic Analysis and Reasoning Based on Vulnerability Knowledge Graph

Cited by 23 publications

References 11 publications

Critical Relation Path Aggregation-Based Industrial Control Component Exploitable Vulnerability Reasoning

Critical Relation Path Aggregation-Based Industrial Control Component Exploitable Vulnerability Reasoning

Multi-Source Knowledge Reasoning for Data-Driven IoT Security

Threat Analysis of IoT Security Knowledge Graph Based on Confidence

Contact Info

Product

Resources

About